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Abstract. For a prime p, let Z(p) be the smallest positive integer n so that p 
divides F n , the nth term in the Fibonacci sequence. Paul Bruckman and Peter 
Anderson conjectured a formula for C( TO ); the density of primes p for which m\Z(p) 
on the basis of numerical evidence. We prove Bruckman and Anderson's conjecture 
by studying the algebraic group G : x 2 — 5y 2 = 1 and relating Z(p) to the order of 
a = (3/2, 1/2) G G(¥ p ). We are then able to use Galois theory and the Chebotarev 
density theorem to compute C( TO )- 



1. Introduction and Statement of Results 

Let F n denote the Fibonacci sequence denned as usual by F = 0, F% = 1 and 
F n = F n _i + F n _2 for n > 2. If p is a prime number, the smallest positive integer 
m for which p\F m is called the Fibonacci entry of p, Z(p). For example, we have 
Z(ll) = 10 since ll|Fio = 55 is the smallest Fibonacci number that is a multiple of 
11. 

It is well-known that for every prime p, Z(p) < p + 1 (in fact, a proof of this follows 
from Lemma [H] and Lemma [TU] in Section [3]). In 1913, Carmichael (see [3J, Theorem 
XXI) proved that if m ^ 1, 2, 6, 12, then there is a prime number p so that Z(p) = m. 
It is not presently known if there are infinitely many primes p for which Z(p) = p+1. 

The main question we study is, given a positive integer m, how often does m divide 
Z(p)7 A natural conjecture would be that Z(p) is "random" mod m and so the 
answer should be 1/m. However, Lagarias proved in 1985 (see [9] and [10]) that the 
density of primes p so that Z(p) is even is 2/3. More precisely, 

< x : p is prime and Zip) is even} 2 
lim — — = -, 

x^oo 1l(x) 3 

where 7r(x) is the number of primes < x. Motivated by this work, Bruckman and 
Anderson in [2] gathered numerical data and conjectured a formula for 

C(m) := lim M(m,x)/7i(x), 
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where M(m,x) = #{p < x : p is prime and m\Z(p)}. Their conjecture is the follow- 
ing. 

Conjecture 1 (Conjecture 3.1 of [2]). If m = q e is a prime power (with e > 1), then 

2-e 

For an arbitrary positive integer m, we have 

C(m) = p(m) Y[ CiQ 3 )- 

qi \\m 

where the product is over all prime powers occurring in the prime factorization of m, 
and 

{1 if 10 \ m 
| ifm = 10 (mod 20) 
\ if20\m. 

The main result of the current paper is a proof of this conjecture. 
Theorem 2. Conjecture [I] true /or every positive integer m. 

One consequence of this result is that the numbers Z(p) show a bias toward being 
composite. For example, if q is prime, then ((q) = -^—^ ~ ^ + ^2) an d so the numbers 
Z(p) are divisible by g more often than entries in a random sequence. 

To prove Theorem (2J we study the algebraic group 

G : x 2 - 5y 2 = 1. 

This is a twisted torus isomorphic to G m over Q(v / 5). The group law is given by 
2/0* (^2, 2/2) — (^1^2 + 52/12/2, ^12/2 + ^22/1) • We consider the point a = (3/2,1/2) G 
G(Q), and we show (see Lemma [9]) that 

n times 

net = a + a + h« = (L 2n /2, F 2n /2). 

Here L n is the nth Lucas number. These are defined by Lq — 2, L\ — 1 and L n = 
L n _i + L n _2 for n > 2. In Lemma fTUl we use this to relate the Fibonacci entry point 
of p to the order of a e G(F P ). 

Next, we study the density of primes p for which m divides the order of a G G(W P ). In 
the context of untwisted tori, questions of this nature are quite familiar. They were 
first considered by Hasse in [5] and [6], and very general results of this type are due 
to Ballot [1] and Moree [13] . Twisted tori of the type mentioned above are considered 
by Jones and the second author in [8], and in this paper criteria are given that will 
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guarantee that if a G G(Q) is fixed and £ is a prime number, then the density of 
primes p for which £ divides the order of a G G(¥ p ) exists and equals ttzt- 

In the present paper, we extend these results to arbitrary positive integers m. To 
make the extension to prime powers, we consider preimages of a G G(¥ p ) under 
multiplication by £. We say that a has an £ n th preimage if there is a /3 G G(¥ p ) so 
that £ n f3 = a. In Lemma Hi] we relate the order of a with the number of preimages 
of a under the multiplication by £. Questions of this type are common in arithmetic 
dynamics, and these have connections with the Diffie-Hellman key exchange protocol 
(see [3]). In this context, a generator a G F* is chosen and an integer x that encodes 
a message is also chosen. Computing y = a x given a and x is straightforward, but 
computing x given a and y is quite difficult (note that a is a preimage of y). 

To study how often a has an £ n th preimage, we show that there are £ n elements P n ^ r 
of G(C) so that £ n P n ^ r = a. We let K t k be the field obtained by adjoining all of 
the x and ^-coordinates of the £ fc th preimages to Q. Then, we essentially show that 
there is an rath preimage of a in G(¥ p ) if and only if the Artin symbol ( — fixes 
an nth preimage for all prime ideals p above p. Finally, we compute Gal(iQ)b/Q) 
and compute the relevant density. As a consequence, we are able to prove another 
conjecture of Anderson and Bruckman. 

Theorem 3 (Conjecture 2.1 of [2]). Let p be a prime and e p = (|) . Given a prime q 
and integers x, i and j with i > j > 0, let M(q,x,i,j) denote the number of primes 
p < x such that q l \\(p — e p ) and g J ||Z(j9). Then 



fEf ifi = j = 0, 



C(<?; hi) ■= lim = {q 2i ifi>landj = 

x^oo 71" UC 



9- 



otherwise. 



To handle the case that m = Y[ i= i is composite, we must show that the fields K £ h , 
1 < i < r are (almost) linearly disjoint. The complication in the formula for ((m) 
arises from the fact that Q(v / 5) ^ -^2° H K 5 b. 

An outline of the paper is as follows. We review the relevant algebraic number theory 
in Section |5J In Section [3] we connect the Fibonacci sequence with the arithmetic of 
G(¥ p ) and Z{p) with the order of a G G(¥ p ), and in turn we connect that with the 
number of preimages. In Section H] we define a Galois representation and prove that 
it is surjective (except in the case that 2 and 5 both divide m). Finally in Section [5] 
we compute the relevant densities and prove Theorem [3] and Theorem |2j 
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2. Background 

We begin by reviewing some algebraic number theory. For an introduction to these 
ideas, see [12]. If L/K is a Galois extension of number fields and ael, define the 
norm of a to be 

N L /k(cc) = JJ a(a). 

aeGeX(L/K) 

If K/Q is a field extension, let (9^ be the ring of algebraic integers in K. We say 
that a prime number p ramifies in K if in the factorization 

n 

pOk = J[p? 

1=1 

we have > 1 for some i. For a fixed X, only finitely many primes p ramify, and 
those that ramify are precisely those that divide the discriminant Ak- 

Suppose now that K/Q is a Galois extension and p is a prime ideal in Ok- We say that 
p is a prime ideal above p if p fl Z = (p). This implies that Ok/P is a finite extension 
of F p . If p is unramified in K/Q, then there is a unique element cr G GaA(K/Q) for 
which 

cr(a) = a p (mod p) 

for all a G Oa- . This element is called the Artin symbol of p and is denoted (^^)- 
Let 



: p is a prime ideal of Ok above p 

P ) IV P J 
This set is a conjugacy class in Gal(if/Q). 

Let Cn — e 27rl// ™. It follows from the definition of the Artin symbol that if p is a prime 
and p is a prime ideal above p in 0Q(f n ), then ( p^)(Cn) = Cn- 

We are now ready to state the Chebotarev density theorem. This result is the key 
tool we will use to compute the densities mentioned in the introduction. To state it, 
let 7r(x) be the number of primes < x. 

Theorem 4 ([7], page 143). Suppose that K/Q is a finite Galois extension. If C C 
Gdl(K/Q) is a conjugacy class, then 



4^{p < x : p is prime and (— = C} |£| 

lim 



x- 



n(x) |Gal(iir/Q)| 



We will need a standard result in Galois theory. If K\ and Ki are two subfields of 
a field E, let (Ki,K 2 ) be the smallest subfield that contains both Ki and K 2 . The 
following result describes Gal((i£i, K 2 )/F) in terms of Gal(Ki/F), Ga\(K 2 /F) and 
G&L((K 1 nK 2 )/F). 
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Theorem 5 ([H], Proposition 3.20). Let K\ and K 2 be Galois extensions of a field 
F . Then K\ H K 2 and (Ki, K 2 ) are both Galois over F and 

Gal({Ki, K 2 ) / F) = {(cr, r) : o-\k 1 c]K 2 = Ak^Ki } C Gal^i/F) x Gal{K 2 /F). 
In particular, 



\(K U K 2 ):F 



\Kt : F| 


\K 2 : F\ 




K x HK 2 : F\ 





Finally, given a group G, we will denote its order by |G|. If g G G is an element, we 
will denote the order of g by \g\. If n is a non-zero integer and i is a prime number 
we will denote by ord^(n) the highest power of I that divides n. 

3. Connection between the Fibonacci sequence and G(¥ p ) 

In this section we will connect the order of the point a = (3/2, 1/2) G G(F P ) with 
Z(p), the smallest positive integer n so that p\F n . Given a prime number I we will 
also relate ord^(|a|), ord^(|G(F p )|) and the highest positive integer m so that there is 
a (3 G G{¥ p ) with £ m f3 = a. 

If X is a field, let 

G(jr) = {(x,y) eK 2 :x 2 - 5y 2 = 1}. 
The set G(K) becomes an abelian group with the group operation 

Oi, yi) * (x 2 , y 2 ) = {xix 2 + 52/12/2, x x y 2 + x 2 y{). 

The identity of G(K) is (1,0), and the inverse of (xx,yx) is (x\, —yi). The group G 
is a twisted algebraic torus. It becomes isomorphic to G m over K(y/E). 

Lemma 6. Let H(K) = {(x,y) G K 2 : xy = 1}. IfVEeK and char(iT) 7^ 2, then 

H(K) = G(K). 

Proof. Let : G(K) — >• H(K) be given by (j)(x,y) — (x + y5y,x — y/Ey). It is easily 
checked that is a homomorphism. If (x, y) G H(K) then <f>((x+y)/2, (x—y)/2\/E) = 
(x,y) and ((x + y)/2, (x — y)/2\/5) G G{K). This shows that is surjective. Then 
ker0 = {(x, y) G G(K) : x + y/5y = 1 and x — y/5y = 1}. If char(iC) 7^ 2, this implies 
that ker = {(1, 0)} and hence is injective. □ 

A simple consequence of this is the following. 
Lemma 7. For any prime p ^ 2,5, G(¥ p ) is cyclic. 
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Proof. We must prove this for two cases: p = 1,4 (mod 5) and p = 2, 3 (mod 5). 
In the first case, 5 is a square in F p and Lemma E] shows that G(F P ) = F p which is 
cyclic. In the second case, 5 is a square in F p 2 and so G(¥ p ) C G(F p 2) = F* 2 - This 
shows that G(¥ p ) is a subgroup of a cyclic group and is hence cyclic. □ 



The following result gives a formula for the order of G(¥ p ). 
Lemma 8. Suppose that p ^ 2,5 is prime. We have 

p — 1 if p = 1 or 4 (mod 5) 



|G(F f 



p + 1 if p = 2 or 3 (mod 5). 



Proof. In the case that p = 1,4 (mod 5) the previous lemma gives |G(F P )| = |F*| = 
p—1. However the following proof handles both cases. A line through the point (1, 0) 
intersects the curve x 2 — 5y 2 = 1 in another rational point if and only if the slope is 
rational; the same argument applies in F p . Such a line has the form y = m(x — 1) 
(mod p). Every point in G(¥ p ) other than (1,0) lies on one such a line. Computing 

the intersection of this line with x 2 — by 2 = 1 shows that x = — \t^2 and y = — 1 ^^ 2 ■ 
This gives rise to a map / : S — > G(¥ p ) — {(1, 0)} where S = {m G F p : 5m 2 ^ 1}. The 
argument above shows that this map is surjective, and a straightforward calculation 
shows that / is injective. It follows that \G{¥ P ) = \S\. We have that \S\ = p — 1 
when p = 1,4 (mod 5) and \S\ = p + 1 otherwise. This completes the proof. □ 

The next result shows that the Fibonacci and Lucas sequences occur as the coordi- 
nates of multiples of a = (3/2, 1/2) G G(Q). 

Lemma 9. We have na = (^yS ^) . 

Proof. We prove this by induction on n. The base case for n = 1 is a = (3/2, 1/2) = 
(L 2 /2, F 2 /2). Our induction hypothesis for n is na = (L 2n /2, F 2n /2). Then na * a = 
(L 2n /2,F 2n /2) * (3/2, 1/2) = ((3L 2n + 5F 2n )/4, {L 2n + 3F 2n )/4). Using the identity 
5F n = L n+1 + L n _i on the first coordinate we get 

3L 2n + 5F 2n = 3L 2n + L 2n+ i + L 2n _i 

— 3L 2n + 2L 2n+ \ — L 2n 

— 2{L 2n + L 2n+ i) = 2L 2n+2 . 

Then using the identity L n = F n+1 + F n _ x on the second coordinate we get 

L 2n + 3F 2n = F 2n+ i + F 2n _i + 3-F 2 „ 

= F 2n+ i + F 2n+ i — F 2n + 3F 2n 
= 2(F 2n+1 + F 2n ) = 2F 2n+2 . 
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Then we have shown (n+l)(3/2, 1/2) = (L 2n+2 /2, F 2n+2 /2), completing the induction. 

□ 

The next result connects the order of a G G(F p ) with Z(p). 

Then 
if \a\ is odd, 

if \a\ = 2 (mod 4), and 
if \a\ = (mod 4). 

Proof. We need a few identities involving the Lucas and Fibonacci sequences: 

Ll ~ 5F„ 2 = 4(-l)", 
L 2 n = L 2n + 2(-ir, 
F 2n — F n L n . 

First we wish to show p \ F n if and only if p | F 2n and L 2 = 4(— l) n (mod p). Suppose 
p | F„. Clearly p | F n L n = F 2n and p | 5F n = L? n — 4(— 1)™. In the other direction, 
if p | F 2n either p | F n or p | L n . From L 2 = 4(— l) n (mod p), we can conclude that 
p\ L n . Therefore p \ F n . 

Since L? n = 4(-l) n (mod p) implies L 2n + 2(-l) n = 4(-l) n (mod p), we have L 2n = 
2(— l) n (mod p). Additionally as na = (L 2n /2, F 2n /2), it is clear that p | F 2n and 
L 2ri = 2(— l) n (mod p) if and only if na = ((—1)™, 0) (mod p). Therefore we conclude 
p | F n if and only if na = ((—1)™, 0) (mod p). 

It follows that Z(p) is the smallest positive integer n for which na = ((— l) n ,0) 
(modp). Since G(F P ) is cyclic, (—1,0) is the unique element in G(¥ p ) of order 2. 
If |a| is odd, then (—1,0) (a). Therefore n is even, |a| | n, and Z(p) = 2 If 
| ok j is even, then (—1,0) G (a) and (|a|/2)o; has order 2. When |a| = 2 (mod 4), 
(|a| /2)a = (-1, 0) = (-lH/2 ? ) (mod p) and Z(p) = \a\ /2. When |a| = (mod 4), 
then (|a|/2)a = (-1,0) ^ (-ll a l/ 2 ,0) (mod p). However |a| = (1,0) = ((-l)l a l,0) 
(mod p) and Z(p) — \a\. □ 

The next lemma relates the order of a with the largest m for which a has an £ m -th 
preimage. We will be able to detect the number of preimages using Galois theoretic 
data, and hence determine the order. 

Lemma 11. Suppose that t and p are prime numbers and a G G(F P ). If £ \ \a\, then 
there are infinitely many preimages of a under multiplication by t. Suppose that t 
divides \a\ and there is an £ m -th preimage of a in G(F P ), but no £ m+1 -th preimage. 
Then 

OTd e (\a\)=OTde(\G(W p )\)-m. 



Lemma 10. Let p f= 2,5 be prime. 

'2\a\ 

Zip) 
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Proof. Let a G G(¥ p ), H = (a) and : H H be given by <f)(x) = £x. We have that 
cf) is an automorphism of H if and only if gcd(£, \H\) = 1 and this implies that a has 
an £ m th preimage for all m if and only if ord^(|a|) = 0. 

On the other hand, suppose that £ divides \a\ and write a = 57, where 7 is a 
generator of the cyclic group G(¥ p ). Write s = gcd(s, \G(¥ p )\)s' and note that s'^y is 
also a generator of G(¥ p ). By replacing 7 with s'j, we may assume that s divides 
\G(¥ P )\. 

Let m = ord^(s). Then {s/f 1 )^ is an £ m th preimage of a. It is easy to see, however 
that if an £ m+1 st preimage /3 m +i of a existed, then its order would be £ m+1 |a|, and 
this does not divide |G(F P )|. Finally, the order of 57 is \a\ = and this gives 

ord,(|a|)=ord £ (|G(F p )|)-m, 

as desired. □ 



4. Galois theory 



For a positive integer m, let 7 m = y 3+ 2 v ^ • The isomorphism in Lemma [6] shows that 
if m is a positive integer, there are precisely m elements P mjT G G(C) with mP m r = a. 
These are given by 



Cm 7m ~l~ Cm 7m Cm 7m Cm 7m 

2 ' 2x/5 



< r < m — 1. 



Note that m(P m ,r — -Pm,s) = a — a = and so P m ,r — -Pm,s is a point in G(C) with 
order dividing m. 

To study the frequency with which m divides |a| in G(¥ p ), we need to know how 
often the points P m ,r "live in G(¥ p )." More precisely, this means that if K m is the 
field obtained by adjoining the x and y-coordinates of all the P m ,r to Q, we need to 
determine how often the rational prime p is contained in a prime ideal p C Ox m so 
that 

Krn/QYp )=p 

y ' m,r- 

If the above equation is true, this implies that the point P m ,r (which for all but finitely 
many primes p can be thought of as an element of the finite field Ojc m /p) is fixed by 
a generator of the Galois group of Ox m /p over F p , i.e., there is an element G G(¥ p ) 
so that m/3 = a. We must first understand Gal(iT TO /Q) and its action on the points 
{P m ,r}- For simplicity, let 

p ._ p f 7m + 7m 7m ~ 7m \ p. ._ p __ p ( Cm + Cm Cm — C 

m ■ £ m,0 I j i— I i ^Cm ■ m,l m,0 



2v/5 J^ m ' m ' L m ' u V 2 ' 2v/5 
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Let J(m) = {ax + b : a G (Z/mZ) x , b G (Z/mZ)} denote the affine group over Z/mZ. 
The group law on I(m) is composition. 

Lemma 12. Tne extension K m /Q is Galois. For each a G Gal(/\" m /Q); inere are 
elements a a G (Z/mZ) x andb a G (Z/mZ) so that a(P m + rQ m ) = P m + {a a r + b a )Q m 
for < r < m — 1 . T7ie map 

p : Gal(iT m /Q) 7(m) 
gwen fo/ p(er) = CL(jX + 60- is an infective homomorphism. 

Proof. The field X m lies in the Galois extension Q(7 m , Cm, v^5) over Q. Then K m 
is separable as it is an intermediate field of a separable extension, it is a splitting 
field as we are adjoining all conjugates of the coordinates P m and Q m . We conclude 
that the extension K m /Q is Galois. For a G Gal(K m /Q), a{mP m)r ) = ma(P m ^) = 
a. Therefore Gal(K m /Q) must take a preimage of a to another preimage of a. 
Hence a(P mfi ) = P m .\> a = P m ,o + b a Q m . Additionally a{mQ m ) = ma(Q m ) = 0. So 
Gal(K m /Q) must take an element of order m to another element of order m. Hence 
o{Q m ) = a*Qm- This yields a(P m + rQ m ) = a(P m ) + ra(Q m ) = P m + {a a r + b a )Q m . 
From the definition of p, it is easy to see that p is a homomorphism. The kernel of p 
is the set {a G Gal(K m /Q) : p(o~) = x}. If a G kerp, then o~(P m + rQ m ) = P m + rQ m 
for all r. This implies that P m and Q m are both fixed by a. Since the coordinates of 
P m and Q m generate K m over Q, it follows that a fixes K m and so ker p = 1. □ 

The Chinese remainder theorem allows one to see that if the prime factorization of 
m = ni=i ?i i ) then 

r 

J(m) = nW)- 
i=l 

We will therefore begin by studying the images of Gal(K m /Q) — > I(m) in the case 
that m is a prime power. This case was studied by Jones and the second author in [S]. 
In particular, Proposition 4.1 and Theorem 4.2 (with the special case d — 5) handle 
the case that m = £ k is a prime. Specifically, if F is a number field, the map 

p:Gzl((K m ,F)/F)->I(£ k ) 

is surjective for all k if and only if 

(1) there is no point (3 G G(F) with £(3 = a, and 

(2) \F(Qs + g 1 ) : F\ = and 

(3) if £ = 2, —2 and —10 are not squares in F and if L is the field obtained by 
adjoining to F the coordinates of Q 8 , then there is no point f3 G G(L) with 
2(3 = a. 
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Using this result, we deduce the following result concerning the surjective of the map 
p:Ga\(K m /Q)^I(m). 

Lemma 13. Let £ be a prime and k > 1. Then the map p : Gal(K e k/Q) — > I(£ k ) is 
surjective. 

Proof. If there is a (3 G G(Q( v / 5)) with £(3 = a, then the isomorphism G(Q( v / 5)) = 
H(Q(y/E)) from Lemma [6] sends /3 to y (3 + y/E)/2. It is well-known that O^r^ = 



Z 



1+V5 
2 



and Z 



2 



it 



is generated by —1 and 1+ 2 V ^ . Since 3+ 2 v ^ = f 

follows that £ = 2. However, the 2nd preimages of a are (^^t^q), which are 
not in G(Q). This establishes condition (1). It is well-known that |Q(0 3 + C#s ) : 



e 2 {e-i) 



2 



and so condition (2) holds. For condition (3), a simple check shows that 
L = Q(\/2, v / -5) and sov^^I and thus there is no /3 G G(L) with 2f3 = a. □ 

The next step is extending the result of the above lemma to prove that the map 
Gal(K m /Q) y I{m) is surjective (unless 10 \m). 

Lemma 14. If £ > 2 is prime, then every minimal subfield of K^/Q is either Q (Pi) 
(or some conjugate), or is contained in Q(0 2 ). If £ = 2, then every minimal subfield 
of K 2 k/Q is contained in Q(y / 5, i, \/2). 

Proof. Lemmas [12] and [13] translate this into a group theory problem. Let iV = 
{ax + b G I(£ k ) : a = 1 (mod £)}. This is a normal subgroup of I(£ k ). If G is a 
group, let <&(G) denote the Frattini subgroup of G, the intersection of the maximal 
subgroups of G. Since N < G, $(iV) C $(G). Since the order of iV is a power of £, 
every maximal subgroup has index £ and so if n G N, then n £ G $(iV). This implies 
that 

{ax + be I(£ k ) : a = l (mod£ 2 ),6 = (mod £)} C <$>(N) C 

and in particular, that the kernel of the map from J(£ fc ) — > I{£ 2 ) is contained in 
$(G). Since /(^ 2 ) is solvable, every maximal subgroup has prime power index. Using 
the surjective homomorphism <fi : I(£ 2 ) — > (Z/£ 2 Z) X , we can identify the maximal 
subgroups of index less than £ and also show there are none of index > £. If M C I(£ 2 ) 
is a maximal subgroup of index £ then either x + 1 G M, in which case M = {ax + 6 : 
c/" 1 = 1 (mod £ 2 )}, or x + 1 G" M. Note that if = ax + b and /2 = cx + d, then 
fi o / 2 o o / 2 _1 = x + ad — be + b — d. Hence, if x + 1 G" M, then M is abelian. 
This implies that if ax + b and cx + d are in M then (a — l)d = (c — 1)6. If e is the 
common value of -Kr for a ^ 1, then we have 

a—l I ' 

M = {a(x - e) + e : a G (Z/£ 2 Z) X } 
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for some e with < e < £ 2 — 1. All of these subgroups are conjugates of {ax : a E 
(Z/£ 2 Z) X }. Translating back to fields, we obtain the desired result when £ > 2. 

When £ = 2 we have $(7(2 fc )) = {ax + b : a = 1 (mod 8), 6 = (mod 2)} pro- 
vided k > 3, and a straightforward calculation shows that the field corresponding to 
$(/(2 fc )) isQ( v / 5,^v / 2). □ 

Suppose that £±, £ 2 , ■ ■ ■ , £ n are prime divisors of m. To prove that G&l(K m /Q) — > I{m) 
is surjective, we will want to show that Kg* fl (K £ n, Kf2, . . . , Kg^-D — Q- We will 
prove this using ramification properties of these fields. 

Lemma 15. Suppose that £ is prime. Then K £ k/Q is ramified only at 5 and £. If 
£ 7^ 2, then every minimal subfield of Kgk/Q is ramified at £. 

Proof. From the formulas for the P$k r it is clear that K £ k is contained in the splitting 
field of x lk - over <Q>(\/5)- The discriminant A L /o of L = Qh f k) is 



A , _ A [i=Q(>/5)] AT /A \ 

Since the discriminant of x ik — 3+ 2 v ^ is a power of £ times a unit, it follows that A 
is a power of 5 times a power of £. If L\ and L2 are two extensions of Q ramified only 
at primes in a set S, then (L 1; L 2 ) /Q is ramified only at primes in S (see Theorem 
4.67 of [12]). It follows from this that the splitting field of ramified only 

at 5 and £ and hence K^k/Q is too. 

To prove the second claim it is enough, by Lemma [HI to prove that Q(Pe) is ramified 
at £. From the surjectivity of p proven in Lemma [131 it follows that Gal(i^/Q) acts 
transitively on the P^ r . Therefore, the Galois closure of Q(Pe) over Q is Kg. Since 
Q(Q + Ce~ ) i s ramified at £ and is contained in Kg, it follows that Kg/Q is ramified 
at £ and this implies that Q(Pi) is ramified at £ as well. □ 

Lemma 16. Let m be an arbitrary positive integer. The map p : Gal(K m /Q) — > I(m) 
is surjective if 10 \ m. IflO\m, then the image of p is 

{ax + b : b is even <^=^> a = 1 or 4 (mod 5)}. 

Proof. First note that if gcd(mi,m 2 ) = 1, then (K mi , K m2 ) = K mim2 . It is clear that 
K mi , K m2 C K mim2 . For the reverse direction note that if m\X + m 2 y = 1 then 

m 1 m 2 (yP mi + xP m2 ) = m 2 ya + mixa = a. 

Thus yP mi + xP m2 is preimage of a under multiplication by m\m 2 . Further, since 
G({K mi , K m2 )) contains elements of order mi and m 2 , it must contain Q mi m 2 an d so 
K mim2 (K mi ^K m2 ^. 
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Suppose first that 10 \ m. To prove that p is surjective, we will prove (by induction 
on the number of distinct prime factors of m) that |Gal(if OT /Q)| = |I(ra)|. The base 
case (n = 1) is handled by Lemma [T3l 

Suppose that m = fllLi * s the prime factorization of m. Since K m /f n n = (K e n , Kg* , . . . , Kf n -\ ) 

we have that K m /£*n is ramified only at 5 and £i, . . . , £ n -i, while K^n is ramified only 

at 5 and t n . Moreover, by Lemma [TBI every minimal subfield of K^„ is ramified at £ n . 

It follows therefore that Kgn D K m ifn is unramified everywhere, and since Q has no 

unramified extensions we have that Kfn D K m /gn = Q. From Theorem [5] we obtain 

that 

\(K#,K n/ #) : Q| = \K# : Q| • \K m/C « : Q\ = |/(C)I • I^KOI = \I{m)\, 
which proves the desired claim. 

A similar argument shows that if 10 |m then \K m : Q\ = \K 2 s l5 s 2 : Q\ ■ 1-^^/(2*15*2) : Q\- 
To determine | -f^2 s i5 s 2 : Q| we will show that K 2 si H K^ 2 = Q(\/E) by determining 
the subfields of K 2 n that are ramified only at 5. We have that Q(v5) C K 2 n and 
the subgroup of I(2 S1 ) corresponding to Q(v5) is 

H = {ax + b : b = (mod 2)}. 
Since if is a 2-group, $(#) = ii'if 2 = {ax + 6 : a = 1 (mod 8),6 = (mod 4)}. 
The field corresponding to this subgroup is L = Q (^\J 1+ 2 ^ , h V^j and it is straight- 
forward to see that the maximal subextension of L ramified only at 5 is Q(v5). It 
follows that K 2 si n K 5 s 2 = Q(y/E) and so when 10|m, \K m : Q| = ||J(m)|. Finally, 

since P 2 = (^y, -^j we have that o E Gal(iT m /Q) fixes y/E if and only if it fixes P 2 

and this occurs if and only if p(o~) = ax + b where 6 = (mod 2) and (|j = 1. This 
yields the desired result. □ 

Remark. The method from the previous sections is very general and can be used to es- 
tablish the surjectivity of Galois representations attached to arbitrary one- dimensional 
tori. 

5. Density computations 

In this section, we will translate conditions on when preimages of a exist in G(F P ) 
into statements about the Frobenius conjugacy class ( Km J Q ) . We will then count the 
sizes of these classes and use this to prove Theorem [2j We will start by focusing on 
the prime power case. 

As in the previous section, let £ be a prime number, k > 1 and K t k be the field obtained 
by adjoining all the x and ^/-coordinates of P(k r to Q. Let p : Gal(K £ k/Q) — > I(£ k ) 
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be the homomorphism defined in Lemma [12j We define 

C k>n ,i = {o e Gal(fQ*/Q) : a(£ k ~ n P ek , r ) = t k ~ n P(k >r for some r with < r < £ k - 1}. 

We will make the convention that if n < 0, then Ck, n ,e is empty. Since rth 
preimage of a, £ k ~ n Pih^ r is an £ n th preimage of a. 

Lemma 17. Let p ^ 2,5, £ be a prime number. Then, there is an nth preimage of a 
in G(¥ p ) if and only if {^—^-) Q C k , n ,e- 

Proof. First suppose that ) ^ Ck,n,e and let p be a prime ideal above p in Ojc tk ■ 

Let a = fix £ k ~ n P t ^ r . We may consider £ k ~ n P e k jr as an element of G(0 Kth /p) 

(note that 2 and 5 are the only primes that divide the denominators of coordinates 
of preimages of a). Since a fixes £ k ~ n Pik^ r and a acts as the Frobenius automorphism 
on K(k /p, it follows that £ k ~ n P £ k r e G(F P ), as desired. 

To show the reverse implication we will first show that for any prime p above p, the 
reduction mod p map on £ n th preimages of a is injective. Any nth preimage of a 
has the form Pgn, r = P £n + rQ^. If P^ + r^Q^n = P^ + r 2 Qen (mod p) with r\ ^ r 2 
(mod £ n ), then (r± — r^Q^ is congruent to the identity mod p. Every element of 
order I is a multiple of {r\ — r^Q^ and this implies that the ^-coordinate of Qi is 
= (mod p) and this implies that 

N Q(Q,VS)/Q ) = ° ( m ° d ^ 

This is a contradiction because -Wq(c £ )/q(0 — Ci ) = ^- Hence the reduction mod p 
map is injective on £ n th preimages. 

Finally, suppose there is an £ n th preimage of a in G(¥ p ). For a prime ideal p above p, 
we consider ¥ p C (9^ fc /p. Since Gal(fQfc/Q) acts on the £ n th preimages of a in Kgk, 

and the reduction map is injective, this implies that G Ck,n,i, as desired. □ 

The previous lemma allows us to determine, based on (^^), when preimages exist. 
The next allows us to determine the group order mod £ k . 

Lemma 18. If p is a prime number with p ^ 2,5, £. If 
and a ^ 1 (mod £ k ), then ord^(|G(F p )|) = ord^(a — 1). 
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Proof. Let p be a prime above p in Ox tk and a = (— ^ — ). Note that o~(Qk) = Q h and 
define e G {±1} by o^v^) = ey/E. If p(a) = ax + b, then 

V p -I- t~ v t p / — p \ / t a -4- t~ a (~ a t~ a 



2 ' 2e v / 5 y " V 2 ' 2^5 

Comparing the ^-coordinates, we obtain that a = ±p (mod Using this fact and 
comparing the y-coordinates gives that a = ep (mod £ k ). Also, e = 1 if and only if 
\/h G Ok k I P and so e = (|) . Finally, we use Lemma |8] to conclude that 



1 



p — 1 (mod if p = 1 or 4 (mod 5) 

-p — 1 (mod if p = 2 or 3 (mod 5). 

This yields the desired result. □ 
Now, for 1 < t < k, define 

T>uu = {<? e Gal(fQ fc /Q) : a a ^ 1 (mod £ fc ) and if n = ord^-l), then a G" C k , n -t+i,i}- 

Here a a denotes the coefficient of x in p(cr) = aa-s + ^o- G I(£ k ). Combining Lemma [TTl 
Lemma IT71 and Lemma fT8l we see that if p is a prime with p ^ ±1 (mod then 

'* divides \a\ if and only if ( — £ — ) C T> k)t ^. 



p 

Lemma 19. Assume the notation above. For 1 < t < k, we have 

\v kU \ _ i 2 - 1 - e 2 - k - e~ k + f- 2k+t 

|Gal(il>/Q)l ~ JF^l ' 

Proof. Noting that P m>r = P m + rQ m we see that a fixes £ k ~ n+t+1 P £ k r if and only if 
(a a — l)r + b a = (mod £ n ~* +1 ). It is easy to see that there are no solutions r to this 
congruence if and only if £ n - t+1 \ b. Thus, \T> kjt ,e\ = {(a, b) G I(£ k ) : ord^(a — 1) = 
n and f 6}. We find that there are ^-2n+t-2^ _ j^-t+i _ i) elements of 

I(£ k ) satisfying these properties if n > t, and if n < t. Summing from n — t to 
— 1 we get 

£2k-t+l _ gk+l _|_ £t _ £k 

and dividing by |/(^ fc )| = £ 2fe_1 (£ — 1) gives the desired result. □ 
We are now able to prove Theorem [3] using similar reasoning. 

Proof of Theorem^ Fix a prime g ^ 2 and integers i and j with i > j > 0. By 
Lemma EH we have ord 9 (Z(p)) = ord ? (|a|) for a = (3/2, 1/2) G G(¥ p ). Let k — i + 1 
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and p 7^ 2, 5, q be a prime. As in the proof of Lemma [191 we have ord q (p — e p ) = i 
and ord 9 (Z(p)) = j if and only if when a G (— ^—), then 

ord g (a CT — 1) = i and ord g (6 CT ) — i — j, 

(with the exception that when j = 0, there is a g n th preimage of a for all n and so 
ord 9 (6 cr ) > i). When i and j are both positive, there are (q — l) 2 g 2fc_2l +i~ 2 pairs of 
(a CT , When z = 0, there are (q — 2)q 2k ~ 2 pairs, and when % > 1 and j = 0, there are 
(<? ~~ l)g 2A:_2 * _1 pairs. Applying the Chebotarev density theorem proves the desired 
result. □ 

Now, we turn to the composite case. Let m = nj=i^i* ■ Take M = nj=in to be 
a multiple of m. The discussion following the proof of Lemma [IE] now implies the 
following statement. If p ^ ±1 (mod for all i, 1 < i < r, then m divides the 
order of a in G(F P ) if and only if for all a G 

a\ K Si e T>s i)Bi ^ for all 1 < i < r. 

In the case that m is coprime to 10, it follows from Lemma [T6l that Q8\(Km 
ni=i Gal(i^s 4 /Q) , and the fraction of elements a that are in T>s l ,s i ,i i for all i is 



n 



YD 



\ \Gal(K M 

In the case that m is a multiple of 10, Gal(iTjw/Q) is an index 2 subgroup of the 
direct product and counting is more tricky. For this reason, we now define for ti > 1 
and t 2 > 1 

2\ti,i2,io = {o- G Gal(i^ 10 fc/Q) : a a ^ 1 (mod 2 fc ) and a CT ^ 1 (mod 5 fc ) and if 
m = ord 2 (a CT - l),n 2 = ord 5 (a (J - 1), then a g C Kni ^ tl +i,2 and a £ C fc;n2 _ t2+li5 } . 

For tx = 0, we omit the condition u (j£ Cfc,m— ti+i 2- 

Lemma 20. Assume the notation above. For < t\ < k and 1 < t 2 < k, we have 

I^Mi^iol 25 5 5 5^5 

|Gal(AT 10 fc/Q)| ~ 36 • 2*^ ~~ 6 • 2*i5 fc 36 • 2*i5 2fc -*2 2 • 10 fc ~ 12 • 2 fc 5 2fc ~*2 
25 5 25 5 



+ 



12-5* 2 2 fe ' 18 • 2 2fc -*i5 2fc -' 2 ' 18-2 2fc "*i5* 2 3-2 2fe -*i5 fc ' 
when t\ > 0, and 

|ZW,io| 25 25 5 10 5 10 



| Gal( AT 10 k /Q) | 9 • 5*2 9 • 5*2 • 4 fc 9 • 5 2fc -* 2 3 • 5 fe 9 • 4 fc • 5 2fc -* 2 3 • 20 



k ' 
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Proof. Arguing as in Lemma [T9l |"Z\ti,t 2 ,io| is the number of ax + b G I(10 k ) that 
satisfy 

b even -<=>- a = 1,4 (mod 5), 
o^l (mod2 fc ),a^l (mod 5 fc ) 
ord2(a — 1) = ni, ords(a — 1) = n.2, 

provided ti > 0. In the case that 6 is odd, a = 2, 3 (mod 5) and t 2 = 0. In the case 
that b is even and a = 1,4 (mod 5) there are 2 fc_ni_1 • 4 • 5 fc - n 2-! choices for a and 
(2 fc-1 — 2 fc ~ ni+ * 1 ~ 1 )(5 A: — 5 fc - n i+*i- 1 ) choices for b. Summing over n\ and n 2 gives 
fc-i fe-i 

rai=il 712 =i 2 

This sum of four geometric series is easily evaluated to give the stated answer. In the 
case that t\ = 0, there are again 2 fc ~ ni_1 • 4 ■ 5*- n 2-i choices for a, and 2 k ~ ni ■ (5 fc — 
gfc-n 2 +*2-i^ choices for 6. Summing yields the stated result. □ 

We are now ready to prove the main result. 

Proof of TheoremlM Let m be a positive integer with gcd(m, 10) = 1 and fix an e > 0. 
Let m = n[=i be the prime factorization of m and note that lim^oo | G Ji(^-'^/q)| = 
C(^*) by Lemma dU Choose a positive real number rj small enough so that 1 — | < 
(1 — r/) r and (1 + 7/) r < 1 + 1. Now, let M = nl=i ^f* be chosen with Si is sufficiently 
large that 



for 1 < 2 < r. Combining the Chebotarev density theorem with the observation that 
divides the order of a 6 G(F p ) if and only if ( Ke — — ) C V St)St A (provided p ^ ±1 
(mod ^j 4 )) we obtain that the number of primes p < x for which m divides |a| satisfies 

7 + f = l Gal(^ fl /Q) " tt(x) " 11 Gal(i^/Q) + (£, - l)^- 1 + 1 

provided x is sufficiently large. We have that 

r r 

C(m)(l - e/2) < J] (Cm -v)<d<H (C(#) + »*) < CH(1 + e/2). 

i=l i=l 

which implies that 

(C(m) — e)7r(x) < < x : m||a|} < (((m) + e)7r(z), 
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provided x is large enough. Combining this with Lemma [10] proves Theorem [2] in 
the case that gcd(m, 10) = 1. The case that gcd(m, 10) > 1 is similar with two 
notable differences: there is extra complexity in dealing with the primes 2 and 5 
using Lemma |20| and Lemma [TOl shows that 2\Z(p) if and only if |a| is odd. □ 
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